This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/fJ2U5ckiTX_Jn_IUFafkCcrSxFM.roa File: fJ2U5ckiTX_Jn_IUFafkCcrSxFM.roa (raw, json) Hash identifier: uMvvSgNTL9vG6QYww4e3YG8JGLDy2rcTKwlhXlwH5Hw= Subject key identifier: 7C:9D:94:E5:C9:22:4D:7F:C9:9F:F2:14:15:A7:E4:09:CA:D2:C4:53 Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Certificate serial: 019B7F83A187C0874F325168FF722BA417A7 Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/fJ2U5ckiTX_Jn_IUFafkCcrSxFM.roa Signing time: Fri 02 Jan 2026 16:21:31 +0000 ROA not before: Fri 02 Jan 2026 16:21:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57652 IP address blocks: 188.72.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.mft rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:a1:87:c0:87:4f:32:51:68:ff:72:2b:a4:17:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Validity Not Before: Jan 2 16:21:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7c9d94e5c9224d7fc99ff21415a7e409cad2c453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:10:6e:9a:3b:58:bb:1a:f7:6f:c7:4b:aa:8c: 75:8c:60:fa:fa:e6:46:a7:1f:ef:33:f1:df:91:f5: 88:8a:6e:e8:17:a9:3c:78:f8:6e:6e:26:02:15:e8: 74:b8:30:4f:e8:fb:14:0b:a4:72:b9:af:d2:65:d9: 64:bf:12:4a:fa:af:7a:a7:d6:54:49:d7:d6:b8:89: 72:1a:f7:a7:b2:38:16:92:c0:9a:19:f8:a6:ef:9c: e4:ab:bb:88:5d:04:05:e4:10:eb:0c:b6:26:71:a4: d0:b7:39:18:63:19:19:b5:7b:a3:f3:06:bc:cb:d7: 38:df:7a:bd:4c:71:11:66:10:e0:a0:f9:aa:7c:65: dc:95:7b:fd:1c:c0:97:25:99:b6:50:51:10:fa:33: b5:13:49:19:e4:0b:bb:14:6a:aa:2a:b2:06:ec:38: ec:fc:02:23:2f:72:2d:a0:fa:fb:ef:68:f7:08:29: 47:46:82:b8:e8:1d:6d:6b:64:b9:22:54:d5:df:a0: fc:e5:85:00:b7:4e:94:98:0e:04:e3:ab:76:52:b0: 12:34:15:57:70:bd:64:ce:56:f5:c0:73:19:6b:65: 80:ea:41:47:60:ed:31:6d:fd:f3:56:c2:de:b4:8a: 21:fd:e6:91:72:70:76:26:f3:90:c9:86:39:14:c9: c9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:9D:94:E5:C9:22:4D:7F:C9:9F:F2:14:15:A7:E4:09:CA:D2:C4:53 X509v3 Authority Key Identifier: keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/fJ2U5ckiTX_Jn_IUFafkCcrSxFM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.72.73.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:83:eb:8c:a5:b9:96:d0:e3:66:50:7a:88:2b:0b:aa:b2:2f: 50:b2:70:c1:3f:a9:44:ab:f6:c0:5f:4a:84:f8:80:70:59:05: aa:58:cd:38:5b:06:20:d6:9f:2b:fe:5e:dc:fd:6b:fe:7c:3c: 5f:9f:ed:ca:37:7d:b9:d1:2a:fa:16:1d:24:0e:15:9a:7b:53: 9b:7f:90:c5:bf:ba:b8:0b:f2:a7:df:35:fb:c3:7a:42:54:64: 20:fa:82:6c:60:97:66:92:38:d6:43:01:bb:d7:b0:da:b7:85: 11:2a:69:e5:2b:ce:ac:06:85:7c:d3:fd:52:50:ff:21:fd:37: b0:31:64:87:7e:fb:a5:94:d9:c6:f6:c6:e8:31:e9:12:90:a3: 4b:83:19:fa:06:59:56:83:d7:36:6a:1f:6b:7a:52:37:e1:12: a4:18:16:a4:dd:77:7d:4e:13:10:7c:13:8e:79:e5:f0:1d:bf: 43:44:8a:16:46:52:0e:72:a2:cf:2f:d1:08:ed:08:33:01:50: 3a:b0:08:c7:38:85:ab:83:08:aa:27:b4:d6:c0:74:ae:09:10: 99:0b:4f:fc:d9:72:ba:fe:80:3d:ab:b1:e5:9a:a1:90:d8:7f: c7:40:8d:7b:ea:c3:87:83:67:6c:91:73:ae:0c:66:d3:41:2a: 07:f0:87:1e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g6GHwIdPMlFo/3IrpBenMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4ODVlODg0YzJmYzdhNzVkMTJkZDFkZWE0OWNlMjM0OWM0 NzA2N2UwHhcNMjYwMTAyMTYyMTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YzlkOTRlNWM5MjI0ZDdmYzk5ZmYyMTQxNWE3ZTQwOWNhZDJjNDUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBBumjtYuxr3b8dLqox1jGD6+uZG px/vM/HfkfWIim7oF6k8ePhubiYCFeh0uDBP6PsUC6Ryua/SZdlkvxJK+q96p9ZU SdfWuIlyGvensjgWksCaGfim75zkq7uIXQQF5BDrDLYmcaTQtzkYYxkZtXuj8wa8 y9c433q9THERZhDgoPmqfGXclXv9HMCXJZm2UFEQ+jO1E0kZ5Au7FGqqKrIG7Djs /AIjL3ItoPr772j3CClHRoK46B1ta2S5IlTV36D85YUAt06UmA4E46t2UrASNBVX cL1kzlb1wHMZa2WA6kFHYO0xbf3zVsLetIoh/eaRcnB2JvOQyYY5FMnJzwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHydlOXJIk1/yZ/yFBWn5AnK0sRTMB8GA1UdIwQY MBaAFFiF6ITC/Hp10S3R3qSc4jScRwZ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODkt OGM5NTgxZDk2ZDhmLzEvZkoyVTVja2lUWF9Kbl9JVUZhZmtDY3JTeEZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODktOGM5NTgxZDk2ZDhm LzEvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvEhJMA0G CSqGSIb3DQEBCwUAA4IBAQAbg+uMpbmW0ONmUHqIKwuqsi9QsnDBP6lEq/bAX0qE +IBwWQWqWM04WwYg1p8r/l7c/Wv+fDxfn+3KN3250Sr6Fh0kDhWae1Obf5DFv7q4 C/Kn3zX7w3pCVGQg+oJsYJdmkjjWQwG717Dat4URKmnlK86sBoV80/1SUP8h/Tew MWSHfvullNnG9sboMekSkKNLgxn6BllWg9c2ah9relI34RKkGBak3Xd9ThMQfBOO eeXwHb9DRIoWRlIOcqLPL9EI7QgzAVA6sAjHOIWrgwiqJ7TWwHSuCRCZC0/82XK6 /oA9q7HlmqGQ2H/HQI176sOHg2dskXOuDGbTQSoH8Ice -----END CERTIFICATE-----Generated at Mon Jan 26 04:50:25 2026 by rpki-client